CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2025/07/09 12:0 a.m.•2 views

itsourcecode Insurance Management System 注入漏洞

itsourcecode Insurance Management System is itsourcecode open source insurance management system. An injection vulnerability exists in version 1.0 of itsourcecode Insurance Management System, which stems from SQL injection in the agentid parameter of the insertAgent.php file...

8.8CVSS7AI score0.00197EPSS

Positive Technologies•added 2025/07/09 12:0 a.m.•2 views

PT-2025-28836 · Itsourcecode · Sourcecodester Insurance Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Insurance Management System version 1.0 Description: A critical issue affects the itsourcecode Insurance Management System, where the manipulation of the agent id argument in the /insertAgent.php file leads to SQL injection. This...

8.8CVSS6.9AI score0.00197EPSS

Exploits1References9

Hive Pro Threat Advisories•added 2025/07/08 2:0 p.m.•2 views

Scattered Spider’s Strategic Hunt: Is Your Industry Next?

Running short on time but still want to stay in the know? Well, we’ve got you covered! We’ve condensed all the key takeaways into a handy audio summary. Our AI-driven podcasts are fit for on the go. Introduction In April 2025, a single phone call didn’t just ‘help crash’ Marks & Spencer’s...

7.8AI score

HackRead•added 2025/07/01 3:32 p.m.•3 views

FBI Warns of Health Insurance Scam Stealing Personal and Medical Data

The Federal Bureau of Investigation FBI has issued a warning about a scam where criminals pretend to be…...

7.2AI score

Packet Storm News•added 2025/06/22 12:0 a.m.•2 views

An Attack Method for Medical Insurance Claim Fraud Detection Based on Generative Adversarial Network

Insurance fraud detection represents a pivotal advancement in modern insurance service, providing intelligent and digitalized monitoring to enhance management and prevent fraud. It is crucial for ensuring the security and efficiency of insurance systems. Although AI and machine learning algorithm...

6.9AI score

RedhatCVE•added 2025/06/18 7:57 p.m.•4 views

CVE-2025-6136

A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /insertPayment.php. The manipulation of the argument reciptno leads to sql injection. The attack may be initiated remotely. The...

9.8CVSS6.8AI score0.00181EPSS

RedhatCVE•added 2025/06/18 7:21 p.m.•5 views

CVE-2025-6135

A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /insertNominee.php. The manipulation of the argument clientid/nomineeid leads to sql injection. The attack can be initiated...

9.8CVSS6.8AI score0.00225EPSS

RedhatCVE•added 2025/06/18 7:21 p.m.•4 views

CVE-2025-6134

A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been classified as critical. This affects an unknown part of the file /insertClient.php. The manipulation of the argument clientid leads to sql injection. It is possible to initiate the attack remotely. The...

9.8CVSS6.7AI score0.00181EPSS

RedhatCVE•added 2025/06/18 6:12 p.m.•3 views

CVE-2025-6133

A vulnerability was found in Projectworlds Life Insurance Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /insertagent.php. The manipulation of the argument agentid leads to sql injection. The attack may be launched remotely. The...

9.8CVSS6.7AI score0.00181EPSS

Microsoft Secure•added 2025/06/18 4:0 p.m.•2 views

Data Breach Reporting for regulatory requirements with Microsoft Data Security Investigations

Seventy-four percent of organizations surveyed experienced at least one data security incident with their business data exposed in the previous year as reported in Microsoft’s Data Security Index: Trends, insights, and strategies to secure data report. Despite the best people, process and...

6.8AI score

The Hacker News•added 2025/06/17 12:53 p.m.•14 views

Google Warns of Scattered Spider Attacks Targeting IT Support Teams at U.S. Insurance Firms

The notorious cybercrime group known as Scattered Spider aka UNC3944 that recently targeted various U.K. and U.S. retailers has begun to target major insurance companies, according to Google Threat Intelligence Group GTIG. "Google Threat Intelligence Group is now aware of multiple intrusions in t...

7.6AI score

NVD•added 2025/06/16 8:15 p.m.•11 views

CVE-2025-6136

9.8CVSS0.00181EPSS

OSV•added 2025/06/16 8:15 p.m.•1 views

CVE-2025-6136

9.8CVSS5.8AI score

Exploits0References5

Cvelist•added 2025/06/16 7:31 p.m.•16 views

CVE-2025-6136 Projectworlds Life Insurance Management System insertPayment.php sql injection

6.5CVSS0.00181EPSS

CVE•added 2025/06/16 7:31 p.m.•30 views

CVE-2025-6136

Projectworlds Life Insurance Management System 1.0 contains a SQL injection in /insertPayment.php caused by manipulating the recipt_no parameter. This vulnerability can be exploited remotely and has had publicly disclosed exploits. Mitigation available in the connected PT-2025-25584 entry suggest...

9.8CVSS6.8AI score0.00181EPSS

Exploits1References5Affected Software1

Vulnrichment•added 2025/06/16 7:31 p.m.•5 views

CVE-2025-6136 Projectworlds Life Insurance Management System insertPayment.php sql injection

6.5CVSS7.6AI score0.00181EPSS